hbdxmz / AutoBypassEncryptAndSignLinks
auto decrypt the request ciphertext and auto bypass the signature of the API. 针对数据包加密、签名保护的安全测试场景,借助burp插件自动解密数据包密文,自动绕过接口的签名保护,最后借助密文数据天然过waf的优势结合Xray等漏扫工具完成半自动的安全测试
☆51Updated last year
Alternatives and similar repositories for AutoBypassEncryptAndSign
Users that are interested in AutoBypassEncryptAndSign are comparing it to the libraries listed below
Sorting:
- 一款支持检测host头攻击的burp suite插件☆53Updated last year
- ☆23Updated 3 years ago
- nuclei模版生成插件☆108Updated last year
- 一款BurpSuite插件,辅助手工测试☆72Updated last year
- 用于红蓝攻防演练中快速分拣资产☆11Updated 2 years ago
- burpsuite knife插件维护分支(2024分支请访问 knife-branch)☆8Updated last year
- 一款扫描js中敏感api的burp插件☆34Updated last year
- burpsuite插件-被动无感识别指纹-主动poc扫描☆27Updated 9 months ago
- god_param☆41Updated last year
- FofaMap云查询版是基于C/S架构打造的Fofa数据采集器,仅需配置好一个服务端,即可实现多个客户端同时在线查询,其客户端支持FofaMap国庆版全部功能。☆38Updated 2 years ago
- ☆90Updated last year
- Automatic authorization enforcement detection extension for burp suite written in Jython developed by Barak Tawily in order to ease appli…☆31Updated last year
- 使用 Java 实现的将 Burp 流量异步转发到 Xray 的 Burp 插件,内含多种功能☆18Updated 2 years ago
- 手动收集各大SRC平台主域名,通过程序自动处理以格式化存入数据库中,便于配合其它信息搜集工具进一步测试。☆47Updated 6 months ago
- ☆40Updated 7 months ago
- 经过优化的渗透测试Payload字典、Fuzz Payload字典。Penetration testing Payload dictionary, Fuzzy Payload dictionary☆37Updated 11 months ago
- 寻找脆弱资产☆11Updated last year
- ☆17Updated 2 years ago
- HiddenDomainHunter☆20Updated 2 years ago
- iis高版本短文件名猜解脚本,适用于iis7.5~10.x版本的iis中间件。☆60Updated 2 months ago
- 一个js文件敏感信息搜集脚本,支持输入url和js文件,也支持批量敏感信息匹配。☆77Updated 2 years ago
- API字典,API爆破字典☆23Updated 2 years ago
- 基于 Json 、自定义Go脚本的多协��程验证扫描器,用于快速验证目标是否存在该漏洞或深层次利用。☆39Updated 7 months ago
- 若依后台定时任务一键利用☆61Updated 3 years ago
- ☆35Updated 3 years ago
- 云函数扫描器☆58Updated last year
- linux权限维持脚本☆39Updated 3 months ago
- Apache RocketMQ 远程代码执行漏洞(CVE-2023-33246) Exploit☆81Updated 2 years ago
- 一款基于javafx的自有IP地址查询工具(适用于重保、蓝队、攻防演习等场景)☆40Updated 10 months ago
- 魔改版,实现冰蝎直连内存马,无需修改冰蝎客户端☆72Updated last year